|
Speakers at the Enterprise Risk - Security Management Conference |
|
Mark Bower
Mark is an Electrical
Engineer, with specialization in Cryptography and Security, PKI, Identity
Management, mission critical systems, and global scale enterprise software with
18 years experience, and has patented designs in the field of secure financial
data communications and bandwidth optimization.
|
|
Joseph
Burkard
Joe Burkard is currently the Director of Global IT
Security and Risk Management at Baxter International. In this role Joe is
responsible for the Global IT Security strategy, policies and governance;
Continuity and application recovery; and IT Operations Risk assessment, risk
management and reporting. He has over 15 years experience as an Information
Technology Risk Consultant, IT Auditor and Information Security practitioner,
and he has worked with multiple industries and organizations including Arthur
Andersen LLP, Protiviti Inc. and Miller Brewing. Joe is a CISA, CISM and CISSP
and is currently pursuing his MBA at the Lake Forest Graduate School of
Management. He has previously been a featured speaker at the ISACA 2004 CACS and
2006 Security Management conferences.
|
|
|
Tim
Burke
Tim Burke has over 18 years of experience in the
field of information security, risk management and information technology.
Tim retired from the U.S. Army in 2002 where he "cut his teeth"
learning Information Security working for the Defense Threat Reduction Agency;
and, since is his retirement has held Information Security Management positions
for two large companies. Today
he manages Information Security, Disaster Recovery, Enterprise
Risk Management/Sarbanes-Oxley processes for IT and Electronic Record
Retention/Archiving for the American Division of a large global insurance
company. Tim holds the following certificates: Certified Information Systems
Security Professional (CISSP) and Certified Information Security Manager (CISM).
|
|
MIchael Gabriel
 Michael Gabriel has been
employed by Career Education Corporation, a $1.8B for-profit, post-secondary
education services company, since 2004 when he was tasked with building an
information security program from the ground up. Michael came to CEC from a
background in the global investment banking industry, where he provided security
management and engineering since 1995. He has also practiced in the security
consulting field, including a stint as an interim security director for an
Internet banking startup. Michael is sought out for speaking engagements on
information security topics and is a frequent contributor to security-related
articles.
|
|
Mark Guth
Mark
Guth, Manager of IS Security at Nicor Gas, has over 20 years of Management
experience in the IT arena. Strong background in telecommunications,
network, and operational management for companies such as LaSalle
Partners, Ameritech, and Comdisco. For the past 5 years, my Nicor
Gas focus has been on operational management, internal controls
process development, Security, and Disaster Recovery.
|
|
|
Daniel M. Harris
 Danny is with Aon's Information Security Services group, and is
instrumental in the development and refinement of corporate security
policies, standards, and procedures. Specializing in security
awareness training, Danny is responsible for the delivery of key
security awareness training for the organization, as well as for the
development, implementation, and maintenance of the corporate
technical information security website.
Danny's involvement also includes security audits, security
vulnerability and risk assessments on Aon's Internet connections,
E-commerce sites, and internal systems. Additionally, he functions
as a consulting engineer and architect for secure network systems,
with extensive involvement in the deployment of E-Mail content
filtering and virus scanning at Aon. Danny is a key member of Aon's
Information Security Incident Response Team, where he assists with
incident handling. He also evaluates and recommends security
products for Aon.
Danny also teaches in the Computer Security and Forensics
Investigation program at Wilbur Wright College in Chicago and has
been an instructor with the SANS Institute for five years.
|
|
Sandy Hawke
With over twelve years of information security
experience in various technical sales, consulting, and product marketing roles,
Sandy drives BigFix's product marketing strategy. Before joining BigFix, she
held senior product marketing responsibilities at Blue Coat Systems, Vormetric,
Nevis Networks and SenSage. Her background also includes hands-on technical risk
mitigation as she led field level engineering support for Cybertrust’s Western
sales team and was responsible for assessing customer environments against the
TruSecure certification criteria. She began her career managing network
firewalls for UUNET – one of the largest ISPs in the world. Combining her
hands-on experience with a real world business perspective, Sandy can provide
salient insights on optimizing infrastructure and security investments. In
addition to the CISSP credential, she holds a BA degree in Political Science
from the University of Delaware and an MA degree in Political Science from UC,
Santa Barbara.
|
|
|
Alex Holden
Alex Holden, CISSP, Chief
Information Security Officer, Robert W. Baird &
Co., Inc.
|
|
|
Min Ju
 Min
Ju is a Security Strategist for Symantec Corporation. His responsibilities
range from security strategy, holistic solutions, architecture, education and
trusted advisor to security executives, senior management and engineers of large
enterprises. Min has over 16 years of diverse experience in information
security, web architecture, infrastructure, networking and development
environments. Min has created several utilities and scripts that have shown
enough value to get included with the Symantec Endpoint Protection build. For
his efforts and contribution Min was bestowed an Innovation Award at the 2008 SE
Summit. Min is a very active member of the global security community in
Symantec and in his local geography. He established the first Midwest Endpoint
Security User Group. Prior to Symantec, Min worked as the Head of Information
Security and Security Architect for CDW Corporation, as an ethical hacking team
lead, vulnerability researcher and web architect at Allstate Insurance and a
senior consultant at Arthur Andersen in the application integration and Internet
teams. Min has spoken previously at CAMP IT and many other industry events. Min
holds a M.B.A. from the Keller Graduate School of Management, B.S. from DeVry
Institute of Technology, and numerous certifications including GREM, GPEN, CEH,
CISSP, CISA, Security+, Linux+, MCSE and MCSA. In his spare time he enjoys
his family, barbeques and getting an adrenaline rush from amateur auto racing.
|
|
Victor
Lee
A 20+ year
veteran in the network and security technology industry, Victor
Lee currently serves as Director of Data Protection Marketing at
Trend Micro. In this role, he evangelizes data protection issues
and solutions for Trend Micro's Data Protection product family
(data leak prevention, message archiving, and email encryption
products). Previously, Victor led Trend Micro's global alliance
marketing effort with Cisco Systems, Inc, driving initiatives to
integrate Trend Micro security technologies into Cisco's
networking and security product lines. Prior to joining Trend
Micro in 2004, Victor worked with Cisco System's Global
Strategic Alliances and Customer Advocacy organizations. He has
consulted with leading technology companies, including Apple,
Inc., and has served as an education technology consultant to
the California Community College
system, the largest higher education system in the
United States.
|
|
|
Andrew C. Maychruk
As C.I.O., Mr. Maychruk oversees the technology and
Information Systems for The PrivateBank; a middle market commercial bank
based in downtown Chicago. The Bank has offices throughout the Midwest;
providing banking, mortgage and wealth management services. In addition to
setting IT strategy for the corporation, he also has responsibility for the
Bank’s business continuity and information security programs. Prior to
joining the Bank, Mr. Maychruk was a consultant on large ERP implementations
as a finance and technology specialist. In addition to his Banking
responsibilities, Mr. Maychruk is involved with several not-for-profits
including ChicagoFirst as a board member. Finally he is active entrepreneur
in the Oak Park, IL business community.
|
|
Amit
Punwani
Amit
Punwani has nearly 12 years of technology management, services, finance
and sales experience across various industries. Currently Amit works as
an industry leader at IBM. Amit's focus with clients has been
primarily on I/T cost and risk management. Amit holds a Masters in
Business Administration from Northwestern University's Kellogg School of
Management and a Bachelor of Science degree in Accounting from the
University of Illinois.
|
|
|
Andrew
Reeder
Andy Reeder serves as the
Director, HIPAA Privacy and Security at Rush University Medical Center, a major academic healthcare center in
Chicago. In
this role, Andy provides leadership and planning to achieve regulatory
compliance around information protection requirements. He is also very involved
in the implementation of privacy and security controls including the development
and implementation of policies and procedures, and the design of technical
controls for major enterprise applications. Andy has served as a leader in
Chicago-based information security services for several years and has previously
worked as the Director, Information Security for Central DuPage Hospital and as a Senior Manager with the
Security Services practice at Deloitte and Touche. Andy holds the CISSP, CISA,
and CISM certifications.
|
|
|
Ken Rowe
 Ken
Rowe provides leadership as the Chief Security Officer for enterprise systems
within the University of Illinois system. With almost 30 years of experience in
Information Security, his career includes past positions at the National
Security Agency (NSA), the National Center for Supercomputing Applications
(NCSA), Cisco Systems, Science Applications International Corporation (SAIC),
and Grant Thornton LLP. Mr. Rowe has been involved extensively with technical
research in network security, security assurance, and software-based
cryptography. He is just as comfortable at the Governance level with Enterprise
Risk Management (ERM), security policies, standards and operations, and a
variety of compliance areas including FERPA, FFIEC, GLBA, HIPAA, ISO 27001, PCI
DSS and SOX. Mr. Rowe is a member of the National Visiting Committee for the
NSF-sponsored Center for Systems Security and Information Assurance (CSSIA), the
Competition Industry Advisory Board for the Midwest Collegiate Cyber Defense
Competition (CCDC), and the InfraGard Springfield Members Alliance.
|
|
Richard Rushing
Mr. Richard Rushing is the Senior
Director of Information Security, for Motorola; He has been
implementing security solutions for the last twenty years at,
Equifax, Siemens Industrial Automations, and GE Capital
Information Technology Services, Secure IT, VeriSign, Network
Solutions, Air Defense and Motorola. Richard has participated
in several corporate Security Council's setting standards and
policies for entire organizations and has been founder of 2
Startup Security companies that were extremely successful and
acquired. A much-in-demand speaker on information and wireless
security, Richard has presented at many leading security
conferences and seminars around the world.
|
|
Steve Sullivan
Steve Sullivan
is the Director of Information Technology and Chief Security
Officer for Central DuPage Hospital located in Winfield, IL, with
convenient care centers and physician offices throughout DuPage County. Central DuPage Hospital is the third largest employer in
DuPage County and has been named as a Top 100 Most Wired and
Wireless
Hospital by Hospital &
Health Networks. Steve's role and responsibilities encompass
information security, business continuity and disaster recovery.
His broad background includes over 20 years in the IT industry
from computer/software sales, technical support, programming,
product development, change management, project management, IT
team management and regulatory compliance issues regarding
JCAHO, HIPAA and PCI.
|
|
Kurt
A. Troyer ,
CISSP
Kurt Troyer is the Corporate
Information Security Manager at ITW. He is responsible for information
security strategy and development at ITW and its various business units.
Kurt has over 15 years of experience in technology and security
management, primarily in the financial services industry. With $15.9
billion in revenues, ITW is a multinational manufacturer of a
diversified range of value-adding and short lead-time industrial
products and equipment. The Company consists of 875 business units in 54
countries and employs some 65,000 people.
|
|
Michael Tyk
Michael Tyk is the
Senior Lead Principal for Symantec and is based in Chicago. Specializing
in enterprise risk management, electronic evidence and consulting
services, Mr. Tyk has more than 25 years experience in data center
operations, application development, computer forensics and information
systems security – including nearly five years of direct experience in
design, development, implementation and integration of high performance,
secure wide area network architectures. Mr. Tyk has guided
cross-functional teams in the design, re-design, testing, and launching
of leading-edge security technologies. His specialties include computer
forensic discovery techniques, secure application development, data
analysis, network analysis and web site security testing. Mr. Tyk was
the Information Security Officer for a top four Law firm and has led
enterprise risk management practices for two of the former big six
accounting firms. A Certified Information Systems Security
Professional (CISSP) and Certified Information Security Manager (CISM) ,
Mr. Tyk holds a B.S. in IT Management from Elmhurst College and Project
Management Certificate from Villanova University. Mr. Tyk has been
published in Network Computing Magazine and is a frequent guest
speaker and presenter at the International Legal Technology Association
(ILTA).
|
|
Arlene Yetnikoff,
CISSP, CISA
Arlene Yetnikoff is the Director of
Information Security for DePaul University. DePaul University
is one of the ten largest private universities in the United
States, offering numerous degrees in Computer Science and other
fields, including a Masters in Computer, Information and Network
Security and a Bachelor's in Information Assurance and Security
Engineering. Arlene has worked in Information Security for
over twenty years both as a consultant, educator and hands-on
practitioner. Arlene's many years of consulting experience in
the Technology Risk group of a major accounting firm allowed her
to help clients of varied sizes in numerous industries assess
and design their information protection architecture, policies
and processes. Today, Arlene leads DePaul's Information
Security and Business Continuity initiatives. Arlene also
teaches Information Security sessions at DePaul and in the
University of Chicago's Masters of Computer Science program.
Arlene is a CISSP and a CISA. She holds a Bachelor's degree in
Mathematics from the University of Chicago and a Masters in
Computer Science, Telecommunications from DePaul University.
|
|